CVE-2026-58376 | Dolibarr up to 23.0.3 REST API Endpoint api_setup.class.php sql injection (Issue 38768)

A vulnerability marked as critical has been reported in Dolibarr up to 23.0.3. The affected element is an unknown function of the file api_setup.class.php of the component REST API Endpoint. This manipulation causes sql injection.

This vulnerability is registered as CVE-2026-58376. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More